Question: is transient the default NameID format for CAS SAML2 support, or > did I somehow override that? >
A quick look suggests that it is the default. If an authentication request does not ask any, and the metadata does not declare support for any, and if you are not overriding the format in a service definition, then transient is chosen. [1] > A further comment about the documentation for older supported versions, > similar to my earlier note that the "big blue box" about deprecation isn't > on the 5.3.x version of the Google Apps Integration page. > Thanks for the note. I ported the warning back to 5.3.x. > It would be extremely helpful for documentation improvements like these to > be "backported" (pardon the [mis?]use of that term) to the documentation of > the older, yet still supported, versions. > Sure. The examples are typically posted for the CAS version they were tested against (and there are or should be unit/integration tests to enforce the correctness of the example going forward). If you have one that continues to be backward compatible, you are most welcome to suggest the change in form a pull request, once you're confident that it works for an older version. [1] Work is being done to add support for a dozen other conditions to make this truly uber-flexible :) > -- - Website: https://apereo.github.io/cas - Gitter Chatroom: https://gitter.im/apereo/cas - List Guidelines: https://goo.gl/1VRrw7 - Contributions: https://goo.gl/mh7qDG --- You received this message because you are subscribed to the Google Groups "CAS Community" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/3c85a441-f5b0-48b6-92f9-34e5afde0fc5%40apereo.org.
